Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
CUPS Security Update: Local Printer Admin Token Exposure
SUSE-SU-2026:1399-1
Summary
A security update for CUPS fixes a vulnerability that could allow an attacker with local access to print a document and then access administrative functions for all printers. This could be used to gain elevated privileges on a local network. Update your systems to the latest version of CUPS to ensure you have the fix.
What to do
- Update cups to version 2.2.7-150000.3.86.1.
Affected software
| Ecosystem | Vendor | Product | Affected versions |
|---|---|---|---|
| SUSE:Linux Enterprise Micro 5.3 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Micro 5.4 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Micro 5.5 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Module for Basesystem 15 SP7 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Module for Desktop Applications 15 SP7 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Module for Development Tools 15 SP7 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise High Performance Computing 15 SP4-ESPOS | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise High Performance Computing 15 SP4-LTSS | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise High Performance Computing 15 SP5-ESPOS | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise High Performance Computing 15 SP5-LTSS | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Server 15 SP4-LTSS | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Server 15 SP5-LTSS | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Server 15 SP6-LTSS | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Server for SAP Applications 15 SP4 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Server for SAP Applications 15 SP5 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Server for SAP Applications 15 SP6 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
| SUSE:Linux Enterprise Micro 5.2 | – | cups |
< 2.2.7-150000.3.86.1 Fix: upgrade to 2.2.7-150000.3.86.1
|
Original title
Security update for cups
Original description
This update for cups fixes the following issue:
- CVE-2026-34990: Local print admin token disclosure using temporary printers (bsc#1261568).
- CVE-2026-34990: Local print admin token disclosure using temporary printers (bsc#1261568).
- https://www.suse.com/support/update/announcement/2026/suse-su-20261399-1/ Vendor Advisory
- https://bugzilla.suse.com/1261568 Third Party Advisory
- https://www.suse.com/security/cve/CVE-2026-34990 URL
Published: 16 Apr 2026 · Updated: 17 Apr 2026 · First seen: 17 Apr 2026